CVE-2026-32840

Edimax GS-5008PL firmware version 1.00.54 and prior contain a stored cross-site scripting vulnerability in the systemnameset.cgi script that allows attackers to inject arbitrary script code by manipulating the sysName parameter. Attackers can send a crafted POST request with malicious script...

CVE-2026-32840

Edimax GS-5008PL firmware ≤ 1.00.54 contains a stored cross-site scripting vulnerability in system_name_set.cgi via the sysName parameter. A crafted POST enables script payloads that execute in administrators’ management pages (including system_data.js). Affected: GS-5008PL devices; impact descri...

CVE-2026-32840

Edimax GS-5008PL firmware version 1.00.54 and prior contain a stored cross-site scripting vulnerability in the systemnameset.cgi script that allows attackers to inject arbitrary script code by manipulating the sysName parameter. Attackers can send a crafted POST request with malicious script...

Edimax GS-5008PL 跨站脚本漏洞

The Edimax GS-5008PL is a Gigabit Ethernet switch produced by Edimax of Taiwan, China. Versions of the Edimax GS-5008PL prior to 1.00.54 contained a cross-site scripting vulnerability. This vulnerability stemmed from the systemnameset.cgi script, which had a storage-type cross-site scripting flaw...

TP-Link TL-SG108E Cross-Site Scripting Vulnerability

The TP-Link TL-SG108E is a Gigabit Ethernet switch from China P&L TP-LINK. A cross-site scripting vulnerability exists in the systemnameset.cgi file in the TP-Link TL-SG108E version 1.0.0. A remote attacker can exploit this vulnerability to submit arbitrary Java script with the help of the...

CVE-2017-17745

Cross-site scripting XSS vulnerability in systemnameset.cgi in TP-Link TL-SG108E 1.0.0 allows authenticated remote attackers to submit arbitrary java script via the 'sysName' parameter...